by 安全扫描
OpenClaw
安全
high confidenceThe skill is an instruction-only refactoring guide that is internally consistent with its stated purpose and does not request unrelated credentials, installs, or privileged persistence.
评估建议
This skill is a text-only refactoring procedure and appears coherent. Before enabling it, note that it will need access to your codebase and test tooling to run the validation steps — review and run any proposed diffs/commits yourself, ensure tests exist or add characterization tests, and confirm the project has the appropriate test runner (the example shows pnpm). Because the skill can be invoked by the agent, avoid granting it credentials or network access it doesn't need, and require human re...详细分析 ▾
✓ 用途与能力
Name/description (refactor code safely) align with the content: the SKILL.md contains step-by-step refactoring instructions, validation guidance, and expected outputs. Nothing requested (no env vars, no binaries, no installs) is disproportionate to this purpose.
✓ 指令范围
Runtime instructions are limited to code-refactoring workflows: run tests, add characterization tests, make small commits/patches, and re-run validation. The instructions imply access to the target repository/files and test runner (expected for a refactor tool) and do not ask for unrelated system files, credentials, or external endpoints.
✓ 安装机制
There is no install spec and no code files — the skill is instruction-only, so nothing is written to disk or downloaded during install.
✓ 凭证需求
The skill declares no environment variables, credentials, or config paths. The example mentions running 'pnpm test', but that is an example command (not a declared requirement) and is proportional to the task of validating refactors.
✓ 持久化与权限
The skill does not request 'always: true' or any persistent privileges, nor does it modify other skills' configs. Autonomous invocation is allowed by default on the platform but is not combined here with broad access.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/24
Initial release of refactor-engine - Safely refactor code to improve structure without altering behavior. - Supports specifying target modules, refactor goals, constraints, and validation commands. - Enforces running tests and validation before and after changes. - Outputs summaries, file changes, behavior guards, and validation results. - Includes clear safety rules to avoid risky rewrites and unintended API changes.
● 无害
安装命令
点击复制官方npx clawhub@latest install axodus-refactor-engine
镜像加速npx clawhub@latest install axodus-refactor-engine --registry https://cn.longxiaskill.com